What Is Zero-Day Vulnerability ?
A zero-day vulnerability is a vulnerability in a system or device that has been disclosed but is not yet patched.
Bijay Pokharel,
July 23, 2021
1 min read
Chinese Hackers Breached Over A Dozen US Pipeline Operators
The U.S. Government identified and tracked 23 U.S. natural gas pipeline operators targeted from 2011 to 2013 in this spearphishing and intrusion campaign. Of the known targeted entities, 13 were confirmed compromises, 3 were near misses, and 7 had an unknown depth of intrusion.
Bijay Pokharel,
July 22, 2021
1 min read
Microsoft Seized 17 Domains Used To Scam Office 365 Users
Microsoft's Digital Crimes Unit (DCU) has seized 17 malicious domains used by scammers in a business email compromise (BEC) campaign targeting the company's customers.
Bijay Pokharel,
July 20, 2021
1 min read
Critical SQL Injection Vulnerability Patched In WooCommerce
A critical SQL injection vulnerability was discovered in WooCommerce, the most popular e-Commerce plugin used by over 5 million WordPress sites.
Bijay Pokharel,
July 18, 2021
1 min read
Moldova’s Court of Accounts Suffers Cyberattack, Public Databases And Audits Destroyed
Moldova's "Court of Accounts" has suffered a cyberattack resulting in the agency's public databases and audits being destroyed.
Bijay Pokharel,
July 17, 2021
1 min read
US State Department Offering $10 Million Rewards For State-Backed Hackers
The U.S. Department of State’s Rewards for Justice (RFJ) program is offering a reward of up to $10 million for information leading to the identification or location of any person who, while acting at the direction or under the control of a foreign government, participates...
Bijay Pokharel,
July 17, 2021
1 min read
SonicWall Issued ‘Urgent Security Notice’ About Ransomware Targeting EOL SMA 100 VPN Appliances
SonicWall has issued an "urgent security notice" warning customers of ransomware attacks targeting unpatched end-of-life (EoL) Secure Mobile Access (SMA) 100 series and Secure Remote Access (SRA) products.
Bijay Pokharel,
July 16, 2021
1 min read
Chinese Hackers Behind SolarWinds Attack: Microsoft
Tech giant Microsoft has revealed that themassive SolarWinds cyber attack was operated by a group of hackers from China.
Bijay Pokharel,
July 15, 2021
1 min read
Kaseya Patches VSA Vulnerabilities Used In REvil Ransomware Attack
Kaseya has released a security update for the VSA zero-day vulnerabilities used by the REvil ransomware gang to attack MSPs and their customers.
Bijay Pokharel,
July 12, 2021
2 min read
Iran’s Transport Ministry Hit By A Cyberattack
Computer systems of the staff of the Ministry of Roads and Urban Development were the subject of the attack which resulted in the ministry's portal and sub-portal sites becoming unavailable, the TV channel reported.
Bijay Pokharel,
July 11, 2021
1 min read
Chinese Hackers Targeting SBI Users Via Phishing Scam
Chinese hackers are targeting the State Bank of India (SBI) users with phishing scams, asking them to update their KYC using a particular website link and offering free gifts worth Rs 50 lakh from the bank via WhatsApp message.
Bijay Pokharel,
July 7, 2021
2 min read
Google Removes 9 Android Apps For Stealing Facebook Credentials
Tech giant Google has removed 9 android apps from the Play Store after it was found these apps stole user’s Facebook login credentials.
Bijay Pokharel,
July 5, 2021
1 min read
REvil Ransomware Group Demands $70 Million To Decrypt All Kaseya Attack Victims
The ransomware group behind the Kaseya supply-chain attack is demanding $70 million ransom in Bitcoin for the tool that allows all affected businesses to recover their files.
Bijay Pokharel,
July 5, 2021
1 min read
REvil Ransomware Group Is Increasing Ransom For Kaseya Ransomware Attack Victims
Last week, a massive REvil ransomware attack affects multiple managed service providers and their clients through a reported Kaseya supply-chain attack and now the ransomware gang is increasing the ransom demands.
Bijay Pokharel,
July 5, 2021
1 min read
Coop Supermarket Closes 500 Stores After Kaseya Ransomware Attack
Swedish supermarket chain Coop has shut down approximately 500 stores after they were affected by an REvil ransomware attack targeting managed service providers through a supply-chain attack.
Bijay Pokharel,
July 4, 2021
2 min read
Kaseya Urges Customers To Immediately Shut Down VSA Servers After REvil Ransomware Hits 200 Companies
A massive REvil ransomware attack affects multiple managed service providers and their clients through a reported Kaseya supply-chain attack.
Bijay Pokharel,
July 3, 2021
2 min read
An Irish Court Ordered VirusTotal To Reveal Private Info Of Stolen HSE Data Downloaders
An Irish court has ordered VirusTotal to provide the information of subscribers who downloaded or uploaded confidential data stolen from Ireland's national health care service during a ransomware attack.
Bijay Pokharel,
July 2, 2021
1 min read
LinkedIn Denies Data Breach Exposing 700 Million Users’ Profile
An American business and employment-oriented online service LinkedIn has denied reports of an alleged data breach, saying the data put up for sale online recently was "scraped" from the professional networking website cum job portal and several other internet sites as reported previously in its...
Bijay Pokharel,
June 30, 2021
1 min read
Tesorion Releases A Free Decryptor For The Lorenz Ransomware
The Lorenz ransomware uses a combination of RSA and AES-128 in CBC mode to encrypt files on an infected system. A password is generated at random for each file, and an encryption key is then derived using the CryptDeriveKey function.
Bijay Pokharel,
June 30, 2021
2 min read
Easily Exploitable Critical Vulnerabilities Patched In ProfilePress Plugin
Wordfence Threat Intelligence team initiated the responsible disclosure process for several vulnerabilities that were discovered in ProfilePress, formerly WP User Avatar, a WordPress plugin installed on over 400,000 sites.
Bijay Pokharel,
June 29, 2021
3 min read
Recent Posts
Subscribe
Cybersecurity Newsletter
You have Successfully Subscribed!
Sign up for cybersecurity newsletter and get latest news updates delivered straight to your inbox. You are also consenting to our Privacy Policy and Terms of Use.